An international enterprise organization is strengthening its cloud security operations and increasing risk visibility across its cloud landscape. The
cloud platform organization is responsible for developing and operating Microsoft Azure and Google Cloud platforms used across multiple regions.
To enhance cloud security maturity, the organization is expanding its security capabilities through advanced cloud security tooling, operational
processes, and risk-based remediation practices.
Tasks and skills
As an Azure Security Engineer, you are responsible for strengthening the security posture of enterprise cloud environments through security
operations, investigation, policy enforcement, and continuous improvement. The focus is on configuring and operating cloud security platforms,
investigating security findings, driving remediation of validated risks, implementing and strengthening security policies, and managing firewall and
security policy approvals.
The role requires a strong security mindset and the ability to work in an environment where not all processes are predefined. Sound judgment, risk-
based decision-making, ownership, and proactive collaboration with workload teams are essential.
You will work as part of a cloud platform and security team, collaborating closely with cloud engineers, security architects, and workload teams to
enable secure cloud adoption while reducing operational and security risks.
Responsibilities
Configure, operate, and continuously enhance cloud security tooling and platforms to maintain a strong security posture across cloud environments.
Translate security requirements, threat models, and risk scenarios into effective platform configurations, security policies, and detection mechanisms.
Collaborate with security architects to ensure cloud security tooling and usage align with organizational security strategy, standards, and best practices.
Security Operations
Investigate security findings and alerts originating from cloud security tooling.
Validate findings by distinguishing false positives from true positives.
Take ownership of true positive findings by engaging workload teams, explaining risks and required remediations, and following up until findings are
Share validated findings and insights with team members to improve policies and create or refine security controls.
Firewall and Policy Management
Review and approve firewall requests and policy exemptions.
Perform risk-based assessments for exceptions and deviations from standard security controls.
Ensure approvals align with defense-in-depth principles and security best practices.
Ways of Working and Continuous Improvement
Operate effectively in an environment without a fully established playbook and contribute to the creation of new processes and standards.
Document operational procedures, decisions, and lessons learned.
Contribute actively to improving security maturity, scalability, and operational efficiency.
Work as part of a multidisciplinary DevOps/SecOps team that owns both operational and improvement activities.
Education
Bachelor or Master degree in IT, Computer Science, Electronics, or a related field.
Experience and Skills
Minimum of 3 years of experience in cloud security and security operations.
Skilled in creating, assigning, and managing Azure Policies.
Strong experience with cloud security platforms; experience with Wiz is a strong advantage.
Hands‑on experience investigating security findings and driving remediation with engineering teams.
Solid understanding of cloud security principles, network security and firewall concepts, private endpoints, routing, network security groups, security policies, controls, and exemptions.
Strong experience automating security or operational processes using scripting and Infrastructure-as-Code such as Terraform, Bicep, PowerShell, or Python.
Familiarity with Azure cloud services and cloud-native monitoring and security tools.
Experience working in large, international enterprise environments.
Personal Skills
Strong security-first mindset with pragmatic, risk-based thinking.
Comfortable working independently in ambiguous environments.
Hands‑on, proactive, and outcome‑driven mentality.
Strong sense of ownership and accountability.
Good communication skills in English, with the ability to engage technical and non-technical stakeholders.
Team player who collaborates effectively across security, platform, and workload teams.
#J-18808-Ljbffr